What users are saying about
<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
249 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
229 Ratings

Cisco ASA

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
249 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.7 out of 100

FortiGate

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
229 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 9 out of 100

Highlights

Cisco ASA and FortiGate are products that provide security for network applications, including firewall, SSL, web filtering and VPN. Both Cisco ASA and FortiGate are well liked among medium to enterprise sized businesses, but large established businesses tend to choose ASA, especially if their server environment is already Cisco. FortiGate is more popular among medium-sized businesses, which are more likely to be price sensitive.

Features

Cisco ASA and FortiGate provide many of the same services, but there are standout features of each.

Cisco ASA is easy to deploy and works well in most environments. It adapts well to small and medium scale servers, especially servers that use Cisco products already. Users like the VPN for connecting remote users to the network or connecting one site to another, and businesses appreciate the web filtering component. The hardware is reliable, as is Cisco technical support. 

FortiGate is a newer up-and-comer to the world of network security. It handles traffic spikes and larger server loads with ease, and is more affordable than its comparable competitors. The interface is simple to use, and the firewall is easy to configure. Simplified pricing allows businesses to pay only for the services they use.

Limitations

Each of these firewall products has its own limitations that may affect which one potential customers will choose.

Though many users appreciate Cisco ASA and its reliable system and support, it can become expensive for smaller businesses, especially when factoring in support contracts. The interface is clunky and can be difficult to use. ASA is not as fully-featured as an NGFW (it’s missing the reliable multi-WAN support FortiGate has), and several users reported switching to an NGFW for a more robust solution. 

The downside of FortiGate’s simplified pricing is that it affects scalability. If a user wants to increase server performance, they must buy additional products. Various versions of the software can be buggy, and frequent patches are released. While the user interface is good, the command line prompt can be confusing to use.

Pricing

FortiGate pricing is available by quote from Fortinet or 3rd party providers. ASA pricing can be found by contacting Cisco or a certified Cisco Partner.

Likelihood to Recommend

Cisco ASA

Cisco ASA is well suited for Large & Medium Scale infrastructure as it provides a bundle of security features in a single device & also it provides best-in-class technical support with easy documentation. Also, it provides deep scanning but for that need to purchase a firepower license additionally which is very costly.
Chirag Deol | TrustRadius Reviewer

FortiGate

Fortinet's Fortigate is a Firewall which can be suited to all the types of organizations starting from Small/ mid size to Large enterprises. Due to its cost effectiveness even a Small organizations can afford it. In the return Fortigate will give you the industry best technology to secure your organization infra.
Binita Kharbanda | TrustRadius Reviewer

Feature Rating Comparison

Firewall

Cisco ASA
8.6
FortiGate
9.1
Identification Technologies
Cisco ASA
8.3
FortiGate
9.1
Visualization Tools
Cisco ASA
7.5
FortiGate
8.9
Content Inspection
Cisco ASA
7.8
FortiGate
8.9
Policy-based Controls
Cisco ASA
9.0
FortiGate
9.2
Active Directory and LDAP
Cisco ASA
9.1
FortiGate
9.1
Firewall Management Console
Cisco ASA
8.1
FortiGate
9.6
Reporting and Logging
Cisco ASA
8.6
FortiGate
8.9
VPN
Cisco ASA
9.3
FortiGate
9.6
High Availability
Cisco ASA
9.5
FortiGate
9.3
Stateful Inspection
Cisco ASA
9.0
FortiGate
9.4
Proxy Server
Cisco ASA
8.3
FortiGate
8.4

Pros

Cisco ASA

  • How we can manage: ASDM the GUI is so much easier to manage it even for a new guy also.
  • Traffic handling capacity
  • More secure and the different features it gives.
  • Support from the TAC team or from the community manages to handle issues very efficiently.
Jitu Mani Das | TrustRadius Reviewer

FortiGate

  • It is the most reliable NGFW that we have ever been touch with it.
  • You can easily upgrade the firewall cluster firmware without user attention!!!
  • User IDentity based feature is fantastic and intrusion prevention just works with least false-positive possible.
  • Very reachfull and intuitive GUI, just love it
Amin Mirzakhani | TrustRadius Reviewer

Cons

Cisco ASA

  • The Java based ASDM can botch commands and isn't compatible on some more locked down systems.
  • Monitoring. Really the same complaint as above, the monitoring available through the ASDM is crappy at best. A much better solution is to send the logs and mirror packets to a SEIM, but that can create issues of its own when looking for realtime analysis.
  • Compatibility across other ASA models. ASA 5520s don't play well with 5525X which don't play well with older 5510s. Each is great on it's own, but it's next to impossible to logically stack them or have them as layers of firewalls in an infrastructure.
  • Lack of cloud based management. The Cisco Meraki security devices do this well, but the ASAs are still behind in this regard.
Brian Taylor | TrustRadius Reviewer

FortiGate

  • When we switched to Fortinet Fortigate, it took some time getting used to and become familiar with the new interface. Being used to strictly command-line interfaces, a full GUI-based firewall was something brand new. Careful planning had to be done when creating rules to ensure we didn't miss anything. However, once we got used to the new GUI interface, going from one Fortinet product to another was simple, as Fortinet used the same interface for all of its devices.
Anonymous | TrustRadius Reviewer

Likelihood to Renew

Cisco ASA

Cisco ASA 9.0
Based on 1 answer
I am committed to low-OpEx usage model, know most (nearly all) hw and sw features and have a good customer base to continue to use Cisco ASA.
Sergei Chernooki | TrustRadius Reviewer

FortiGate

FortiGate 9.9
Based on 4 answers
Fortinet's products have kept improving with new software releases and they continue to deliver great value. Their support is also very good. I believe that as a small enterprise, their products have given us competitive advantage delivering features and functionality that enable us to innovate and do things better. They also continue to be a leader in the markets they serve.
Adrian Cumberbatch | TrustRadius Reviewer

Usability

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 9.9
Based on 6 answers
The user interface shared among many simultaneous users is very easy to get around. With shared favorites among users, most tasks are easily bookmarked and can quickly be found and edited. Their strategy for web filter integration is easy to understand and manage as well. With some general direction, setup and maintenance were easy to do and easy to teach others in the organization to do as well.
Jeff Winter | TrustRadius Reviewer

Reliability and Availability

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 10.0
Based on 2 answers
We had didn't any hardware failures at our two main office locations and upgraded our units last year after using them for about 5-6 years
Adrian Cumberbatch | TrustRadius Reviewer

Performance

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 10.0
Based on 1 answer
Good performance and really good integration. We have integration with Microsoft AD.
Kewyn Medina | TrustRadius Reviewer

Support Rating

Cisco ASA

Cisco ASA 8.4
Based on 12 answers
The support is usually very good and gets back to you very quickly. However I had some instances of when two engineers will give me wildly different answers to what I thought was a simple question. Overall however I do rate the support highly and they are generally always very good.
Fraser Clark | TrustRadius Reviewer

FortiGate

FortiGate 8.9
Based on 33 answers
We live in Turkey. Fortinet's Turkey office [dealt] constantly with us in our every problem or our experience. In addition, global support teams also supported every ticket we opened in every problem we encountered. They support innovative approaches and evaluate and offer solutions. In this context, they were very supportive of the problems we encountered in previous versions.
Tayfun Toka | TrustRadius Reviewer

In-Person Training

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 10.0
Based on 1 answer
I received it a couple years afters use it and it was just to confirm my knowledge about the tool.
Kewyn Medina | TrustRadius Reviewer

Implementation Rating

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 8.0
Based on 4 answers
Make sure that you have the most current version of FortiOS. Make sure all Fortigates are on the same version
Steve Jenovai | TrustRadius Reviewer

Alternatives Considered

Cisco ASA

Cisco made sense from the standpoint that my engineers already knew it and there was little learning curve. Personally, I prefer a purpose-built hardware solution. Untangle is not ready for the enterprise as a whole but works great to do web/application filtering . Checkpoint and Palo are VERY high cost and have few support options
Larry Chisholm | TrustRadius Reviewer

FortiGate

Fortinet was well placed on the Gartner report which lead to my initial investigation into the company. I quickly narrowed my selections down to Palo Alto and Fortinet, due to feature set, reputation and ease of use. Fortinet won out simply because Palo Alto did not offer a small branch style firewall at the time I was looking. I'm very glad they did. I have enjoyed working with their products from the moment they were first racked.
Anonymous | TrustRadius Reviewer

Scalability

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 9.8
Based on 2 answers
My environments are pretty small (less than 100 users per location) so no issues here.
Adrian Cumberbatch | TrustRadius Reviewer

Return on Investment

Cisco ASA

  • The next gen features allowed us to remove an older exinda device from our network by replacing that qos functionality and reporting.
  • The geoblocking features have allowed us to block many of our biggest threat sources from even trying to attach our systems, which makes our security reporting look much cleaner.
  • We needed granular user reporting in our web filtering, so we did have to implement a separate proxy solution (which we already had). It was a fair amount of work to integrate but does work with the ASA. Unfortunately, the reporting wasn't as tied to the users for our HR department to rely on.
Anonymous | TrustRadius Reviewer

FortiGate

  • Fortigates have an interesting bundle model for support and subscription services that make it an attractive option to deploy Firewall, IDS, Ant-virus, anti-SPAM in a single device. The cost of the bundle is pretty much what you pay for the device, not requiring huge expenditures on it's time to renew the hardware.
Artur Bittencourt | TrustRadius Reviewer

Pricing Details

Cisco ASA

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

FortiGate

General

Free Trial
Yes
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Rating Summary

Likelihood to Recommend

Cisco ASA
8.6
FortiGate
9.2

Likelihood to Renew

Cisco ASA
9.0
FortiGate
9.9

Usability

Cisco ASA
FortiGate
9.9

Reliability and Availability

Cisco ASA
FortiGate
10.0

Performance

Cisco ASA
FortiGate
10.0

Support Rating

Cisco ASA
8.4
FortiGate
8.9

In-Person Training

Cisco ASA
FortiGate
10.0

Implementation Rating

Cisco ASA
FortiGate
8.0

Scalability

Cisco ASA
FortiGate
9.8

Add comparison